-
漏洞描述

A format string flaw exists in gpsd. The gpsd_report() function fails to validate string data received on TCP port 2947. With a specially crafted request, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

-
时间线

公开日期:
2005-01-25

发现日期:
Unknow

利用日期:2005-01-25

解决日期:2005-01-27

-
解决方案

Upgrade to version 2.8 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.